Stephen Gran [Sat, 23 May 2009 13:38:15 +0000 (14:38 +0100)]
Add ability to extract keys from nodeinfo
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 23 May 2009 11:37:25 +0000 (12:37 +0100)]
And add explicit accept at end of mime acl
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 23 May 2009 11:36:57 +0000 (12:36 +0100)]
Revert "Revert "And another acl for exim"+1"
This reverts commit
4cb5fb5099d0c7177bce071920cecea8dcdda873.
Peter Palfrader [Sat, 23 May 2009 10:49:36 +0000 (12:49 +0200)]
Revert "And another acl for exim"+1
This reverts commits
3feb4c20b11b567a034e2ba06e45c066f380a4b9 and
b8fa816fa0c7ec2dc5d626b16ec4ef5f2afe1b6d.
These break some of our mail for now.
Stephen Gran [Sat, 23 May 2009 01:43:45 +0000 (02:43 +0100)]
Let people know why their mail is being rejected with the new check
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 23 May 2009 01:30:45 +0000 (02:30 +0100)]
Comment out the rbl.debian.net stuff while it's timing out all the time
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 23 May 2009 00:16:04 +0000 (01:16 +0100)]
Add the check to a few more hosts
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 23 May 2009 00:13:41 +0000 (01:13 +0100)]
This works better, even though it's a little more tedious
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 23 May 2009 00:08:51 +0000 (01:08 +0100)]
And another acl for exim
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Fri, 22 May 2009 23:59:16 +0000 (00:59 +0100)]
And more syntax thing
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Fri, 22 May 2009 23:57:56 +0000 (00:57 +0100)]
And restart exim if the perl script changes
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Fri, 22 May 2009 23:55:20 +0000 (00:55 +0100)]
New class
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Fri, 22 May 2009 23:33:38 +0000 (00:33 +0100)]
Some syntax things
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Fri, 22 May 2009 23:25:55 +0000 (00:25 +0100)]
Let's try a nice SURBL lookup for the PTS mail
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 21 May 2009 23:37:47 +0000 (00:37 +0100)]
Remove some logic from machines that don't need it
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 21 May 2009 22:02:54 +0000 (23:02 +0100)]
Merge branch 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet
Stephen Gran [Thu, 21 May 2009 22:02:27 +0000 (23:02 +0100)]
Make clients only use tls with smarthost
Signed-off-by: Stephen Gran <steve@lobefin.net>
Peter Palfrader [Thu, 21 May 2009 10:21:14 +0000 (12:21 +0200)]
break logging for cord
Peter Palfrader [Thu, 21 May 2009 09:30:09 +0000 (11:30 +0200)]
delaycompress for mail.log
Peter Palfrader [Wed, 20 May 2009 09:21:05 +0000 (11:21 +0200)]
Push apache defaults to piatti
Peter Palfrader [Mon, 18 May 2009 07:00:08 +0000 (09:00 +0200)]
Ignore syslog-ng config in samhain
Peter Palfrader [Mon, 18 May 2009 06:58:51 +0000 (08:58 +0200)]
Move some entries around (staying in the same section) so that the comment is right again
Peter Palfrader [Mon, 18 May 2009 06:57:28 +0000 (08:57 +0200)]
And push out syslog-ng.conf and logrotate.d/syslog-ng
Peter Palfrader [Mon, 18 May 2009 06:54:38 +0000 (08:54 +0200)]
user.log a+r
Peter Palfrader [Mon, 18 May 2009 06:52:28 +0000 (08:52 +0200)]
mail.log is gid maillog
Peter Palfrader [Mon, 18 May 2009 06:43:21 +0000 (08:43 +0200)]
Rotate mail daily, keep 30, and use date extension
Peter Palfrader [Mon, 18 May 2009 06:41:41 +0000 (08:41 +0200)]
Add default /etc/syslog-ng/syslog-ng.conf and /etc/logrotate.d/syslog-ng
Stephen Gran [Sun, 17 May 2009 23:20:40 +0000 (00:20 +0100)]
whee. Let's change all the syslogging without watching
Signed-off-by: Stephen Gran <steve@lobefin.net>
Peter Palfrader [Sat, 16 May 2009 12:45:30 +0000 (14:45 +0200)]
Merge branch 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet
* 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet:
And use the right variable name
Put the puppet block in [IgnoreAll] on handel
get rid of old flat files
Get rid of duplicate line
Use the right variable
Need to include samhain after we get nodeinfo
let's try to actually use the case syntax that ruby uses
Fixup
Push out new template
Actually get the output of the block
First pass at a samhain template
Peter Palfrader [Sat, 16 May 2009 12:45:22 +0000 (14:45 +0200)]
Ignore amavisd-new on liszt
Stephen Gran [Sat, 16 May 2009 09:49:28 +0000 (10:49 +0100)]
And use the right variable name
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 16 May 2009 09:48:36 +0000 (10:48 +0100)]
Put the puppet block in [IgnoreAll] on handel
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 16 May 2009 09:40:13 +0000 (10:40 +0100)]
get rid of old flat files
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 16 May 2009 09:34:57 +0000 (10:34 +0100)]
Get rid of duplicate line
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 16 May 2009 09:30:17 +0000 (10:30 +0100)]
Use the right variable
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 16 May 2009 09:27:23 +0000 (10:27 +0100)]
Need to include samhain after we get nodeinfo
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 16 May 2009 09:26:40 +0000 (10:26 +0100)]
let's try to actually use the case syntax that ruby uses
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 16 May 2009 09:25:28 +0000 (10:25 +0100)]
Fixup
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 16 May 2009 09:24:14 +0000 (10:24 +0100)]
Push out new template
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 16 May 2009 09:21:41 +0000 (10:21 +0100)]
Actually get the output of the block
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Sat, 16 May 2009 09:18:17 +0000 (10:18 +0100)]
First pass at a samhain template
Signed-off-by: Stephen Gran <steve@lobefin.net>
Peter Palfrader [Fri, 15 May 2009 14:35:03 +0000 (16:35 +0200)]
Make liszt use the common sudoers file
Peter Palfrader [Fri, 15 May 2009 13:53:45 +0000 (15:53 +0200)]
prepare a named-security module that handles the config that is currently in dsa-misc.
Peter Palfrader [Thu, 14 May 2009 06:51:48 +0000 (08:51 +0200)]
push our standard apache stuff to duarte
Peter Palfrader [Tue, 12 May 2009 15:41:39 +0000 (17:41 +0200)]
syntax fix
Peter Palfrader [Tue, 12 May 2009 15:39:53 +0000 (17:39 +0200)]
run apt-get update after modifying sources lists
Peter Palfrader [Tue, 12 May 2009 15:36:07 +0000 (17:36 +0200)]
paer to buildd group
Peter Palfrader [Fri, 8 May 2009 17:13:25 +0000 (19:13 +0200)]
Ignore some locally backported packages for samosa, add puppet headers
Peter Palfrader [Fri, 8 May 2009 10:43:28 +0000 (12:43 +0200)]
apache2 config on samosa
Peter Palfrader [Fri, 8 May 2009 10:07:34 +0000 (12:07 +0200)]
comment nitpicks
Peter Palfrader [Fri, 8 May 2009 09:36:23 +0000 (11:36 +0200)]
First take at integrating liszt's sudoers file
Stephen Gran [Thu, 7 May 2009 07:04:43 +0000 (08:04 +0100)]
Remove common/exim4.conf
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 7 May 2009 06:59:47 +0000 (07:59 +0100)]
New template for all.
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 7 May 2009 06:54:37 +0000 (07:54 +0100)]
Make smarthost transport fully conditional instead of partly
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 7 May 2009 06:49:05 +0000 (07:49 +0100)]
last service host
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 7 May 2009 06:42:46 +0000 (07:42 +0100)]
Last two mail relay hosts
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 7 May 2009 00:43:21 +0000 (01:43 +0100)]
double escape, it seems like
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 7 May 2009 00:35:51 +0000 (01:35 +0100)]
Add spohr
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 7 May 2009 00:31:23 +0000 (01:31 +0100)]
Again with cast to a string
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 7 May 2009 00:29:45 +0000 (01:29 +0100)]
Use the hash variable
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 7 May 2009 00:27:13 +0000 (01:27 +0100)]
Add piatti
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 7 May 2009 00:17:50 +0000 (01:17 +0100)]
Need to cast to a string to evaluate
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 7 May 2009 00:16:14 +0000 (01:16 +0100)]
Add kassia
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 7 May 2009 00:12:07 +0000 (01:12 +0100)]
Right. For some reason, they're strings, not booleans
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 7 May 2009 00:10:54 +0000 (01:10 +0100)]
or like this
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 7 May 2009 00:10:07 +0000 (01:10 +0100)]
Let's try it this way
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 7 May 2009 00:00:13 +0000 (01:00 +0100)]
Can't redefine exim4.conf statement
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Wed, 6 May 2009 23:59:25 +0000 (00:59 +0100)]
Stop confusing variable names
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Wed, 6 May 2009 23:58:10 +0000 (00:58 +0100)]
escape some quotes
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Wed, 6 May 2009 23:57:16 +0000 (00:57 +0100)]
syntax error
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Wed, 6 May 2009 23:56:03 +0000 (00:56 +0100)]
Add new exim.conf template and ship it to handel for now
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Wed, 6 May 2009 23:43:44 +0000 (00:43 +0100)]
Add mail_port and reservedaddrs, and do a little cleanup
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Wed, 6 May 2009 23:14:33 +0000 (00:14 +0100)]
Pull the information out of the yaml file so we don't have to restart
puppetmaster to move a service
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Wed, 6 May 2009 23:14:21 +0000 (00:14 +0100)]
A little cleanup of whitespace
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Wed, 6 May 2009 23:08:48 +0000 (00:08 +0100)]
Some extra yaml info
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Wed, 6 May 2009 22:45:04 +0000 (23:45 +0100)]
that's probably the fix
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Wed, 6 May 2009 22:42:03 +0000 (23:42 +0100)]
Revert "Let's try this"
This reverts commit
f69f9d158803c2007f1a3dfcfaf06a972d94046b.
Stephen Gran [Wed, 6 May 2009 22:40:06 +0000 (23:40 +0100)]
Let's try this
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Wed, 6 May 2009 22:38:21 +0000 (23:38 +0100)]
Start with the simple case
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Wed, 6 May 2009 22:18:41 +0000 (23:18 +0100)]
Comment all this out until we find the problem
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Wed, 6 May 2009 21:51:28 +0000 (22:51 +0100)]
Some more nodeinfo
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Wed, 6 May 2009 20:18:06 +0000 (21:18 +0100)]
Add some more information to the nodeinfo function. boo for hardcoded
values, but it has to go somewhere
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Tue, 5 May 2009 17:13:16 +0000 (18:13 +0100)]
We want to talk to LDAP on db, not samosa
Signed-off-by: Stephen Gran <steve@lobefin.net>
Peter Palfrader [Tue, 5 May 2009 08:27:54 +0000 (10:27 +0200)]
Adapt samhain for draghi
Peter Palfrader [Tue, 5 May 2009 07:49:00 +0000 (09:49 +0200)]
Adapt samhain for draghi
Peter Palfrader [Sun, 3 May 2009 20:07:21 +0000 (22:07 +0200)]
On draghi it is /srv, not /org </nitpick>
Peter Palfrader [Sun, 3 May 2009 19:26:18 +0000 (21:26 +0200)]
db.d.o mail is now draghi
Peter Palfrader [Sun, 3 May 2009 19:11:36 +0000 (21:11 +0200)]
Merge branch 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet
* 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet:
buildd module on arcadelt, argento
puppet auto-upgrading packages is annoying in combination with samhain.
basic apache2 stuff on draghi
Add draghi
buildd on murphy
Peter Palfrader [Sun, 3 May 2009 19:11:30 +0000 (21:11 +0200)]
dns master moving to draghi, therefore the sudoers to reload bind needs to change too
Peter Palfrader [Sat, 2 May 2009 14:55:00 +0000 (16:55 +0200)]
buildd module on arcadelt, argento
Peter Palfrader [Fri, 1 May 2009 16:11:37 +0000 (18:11 +0200)]
puppet auto-upgrading packages is annoying in combination with samhain.
I'd rather have the apt check complain than the samhain check.
Peter Palfrader [Fri, 1 May 2009 14:00:04 +0000 (16:00 +0200)]
basic apache2 stuff on draghi
Peter Palfrader [Fri, 1 May 2009 13:55:35 +0000 (15:55 +0200)]
Add draghi
Peter Palfrader [Fri, 1 May 2009 12:48:06 +0000 (14:48 +0200)]
buildd on murphy
Peter Palfrader [Thu, 30 Apr 2009 20:20:30 +0000 (22:20 +0200)]
Merge branch 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet
* 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet:
Mention that we verified the cert
Peter Palfrader [Thu, 30 Apr 2009 20:20:14 +0000 (22:20 +0200)]
lafayette no longer needs to relay its mail
Stephen Gran [Thu, 30 Apr 2009 20:18:04 +0000 (21:18 +0100)]
Mention that we verified the cert
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 30 Apr 2009 20:12:33 +0000 (21:12 +0100)]
Oh yes, line wrap markers
Signed-off-by: Stephen Gran <steve@lobefin.net>
Stephen Gran [Thu, 30 Apr 2009 20:10:37 +0000 (21:10 +0100)]
Merge branch 'master' of ssh://handel.debian.org/srv/puppet.debian.org/git/dsa-puppet
Stephen Gran [Thu, 30 Apr 2009 20:10:06 +0000 (21:10 +0100)]
Add cert relay info to received header
Signed-off-by: Stephen Gran <steve@lobefin.net>
projects / mirror / dsa-puppet.git / log